Plugins

Token API

Full credit card data should never go through your server.
Do not send the credit card data to Omise from your servers directly.
You must send the card data from the client browser via Javascript (Omise-JS).
The methods described on this page should only be used with fake data in
test mode (e.g.: quickly creating some fake data, testing our API from
a terminal, etc.). If you are PCI-DSS compliant, sending card data from server requires a valid PCI-DSS certification.
You can learn more about this in Security Best Practices

Attribute

Name

Type

Description

object

string

The string token.

id

string

The TOKEN_ID.

livemode

boolean

Whether this is a live (true) or test (false) token.

location

string

Path to retrieve the token.

used

boolean

Whether the token has been used or not. Tokens can be used only once to make a charge on their card or to associate the card to a customer.